NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

ilnli's avatar
ilnli
Aspirant
Aug 24, 2015

M4100 Switch with 802.1x mac-based authentication (MAB) with freeRadius

Hi,

 

I'm trying to configure freeRadius for MAB to work with NetGear M4100 switch, freeRadius is setup to grab user information from mysql database, I've a custom query to authenticate users, I return the passwored in 'Cleartest-Password' format in freeRadius, however the switch keeps failing to authenticate a port and is giving this error:

 

(3)   [sql] = ok
(3)   [expiration] = noop
(3)   [logintime] = noop
(3)  WARNING: pap : Auth-Type already set.  Not setting to PAP
(3)   [pap] = noop
(3)  } #  authorize = updated
(3) Found Auth-Type = EAP
(3) # Executing group from file /etc/raddb/sites-enabled/default
(3)   authenticate {
(3)  eap : Expiring EAP session with state 0x429ed53e429fd14a
(3)  eap : Finished EAP session with state 0x429ed53e429fd14a
(3)  eap : Previous EAP request found for state 0x429ed53e429fd14a, released from the list
(3)  eap : Peer sent method MD5 (4)
(3)  eap : EAP MD5 (4)
(3)  eap : Calling eap_md5 to process EAP data
(3)  eap : Freeing handler
(3)   [eap] = reject
(3)  } #  authenticate = reject
(3) Failed to authenticate the user
(3) Login incorrect: [001E64E5456E/<via Auth-Type = EAP>] (from client mbh-sw14 port 1 cli 00:1E:64:E5:45:6e)

 

I was wonering(3)   [sql] = ok
(3)   [expiration] = noop
(3)   [logintime] = noop
(3)  WARNING: pap : Auth-Type already set.  Not setting to PAP
(3)   [pap] = noop
(3)  } #  authorize = updated
(3) Found Auth-Type = EAP
(3) # Executing group from file /etc/raddb/sites-enabled/default
(3)   authenticate {
(3)  eap : Expiring EAP session with state 0x429ed53e429fd14a
(3)  eap : Finished EAP session with state 0x429ed53e429fd14a
(3)  eap : Previous EAP request found for state 0x429ed53e429fd14a, released from the list
(3)  eap : Peer sent method MD5 (4)
(3)  eap : EAP MD5 (4)
(3)  eap : Calling eap_md5 to process EAP data
(3)  eap : Freeing handler
(3)   [eap] = reject
(3)  } #  authenticate = reject
(3) Failed to authenticate the user
(3) Login incorrect: [001A6495456E/<via Auth-Type = EAP>] (from client mbh-sw14 port 1 cli 00:1a:64:95:45:6e)

 

I would be greatful if someone can help me solve my problem.

Troubleshooting
No RepliesBe the first to reply

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More